Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Mein PC wird immer von einer Ip-adresse angegriffen!

Mein PC wird immer von einer Ip-adresse angegriffen!


Log-Analyse und Auswertung: Mein PC wird immer von einer Ip-adresse angegriffen!

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Alt 19.06.2010, 17:19   #1
BlaZteR
 
Mein PC wird immer von einer Ip-adresse angegriffen! - Ausrufezeichen

Hilfe ich glaube wurde infiziert


hier HijackThis log
Code:
ATTFilter
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:07:54, on 19.06.2010
Platform: Windows 7  (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Logitech\Logitech Vid\Vid.exe
C:\Program Files\ICQ7.2\ICQ.exe
C:\Program Files\NETGEAR\WG111v2\WG111v2.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\explorer.exe
C:\Users\BlaZteR\Downloads\HiJackThis204.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
O2 - BHO: SMTTB2009 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\HypreCam Toolbar\tbcore3.dll
O3 - Toolbar: HypreCam Toolbar - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\HypreCam Toolbar\tbcore3.dll
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [Logitech Vid] "C:\Program Files\Logitech\Logitech Vid\vid.exe" -bootmode
O4 - HKCU\..\Run: [ICQ] "C:\Program Files\ICQ7.2\ICQ.exe" silent loginmode=4
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - Startup: Logitech . Produktregistrierung.lnk = C:\Program Files\Logitech\Logitech WebCam Software\eReg.exe
O4 - Global Startup: NETGEAR WG111v2 Smart Wizard..lnk = C:\Program Files\NETGEAR\WG111v2\WG111v2.exe
O4 - Global Startup: NETGEAR WG111v2 Smart Wizard.lnk = C:\Program Files\NETGEAR\WG111v2\WG111v2.exe
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\BlaZteR\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: SCM_Service - Unknown owner - C:\Windows\System32\WinService.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 4292 bytes

Alt 19.06.2010, 17:21   #2
BlaZteR
 
Mein PC wird immer von einer Ip-adresse angegriffen! - Standard

Mein PC wird immer von einer Ip-adresse angegriffen!


Hallo Trojaner Board! Ich glaube ich wurd infiziert weil mein PC langsam aufgibt... pls hilft mir ( bin grad 13 )
hier der OTL log
Code:
ATTFilter
OTL logfile created on: 19.06.2010 18:13:36 - Run 1
OTL by OldTimer - Version 3.2.6.0     Folder = C:\Users\BlaZteR\Downloads
 Ultimate Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 55,00% Memory free
3,00 Gb Paging File | 3,00 Gb Available in Paging File | 72,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 101,56 Gb Total Space | 43,99 Gb Free Space | 43,32% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: BLAZTER-PRIVAT
Current User Name: BlaZteR
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
 
========== Processes (SafeList) ==========
 
PRC - [2010.06.19 18:13:09 | 000,572,416 | ---- | M] (OldTimer Tools) -- C:\Users\BlaZteR\Downloads\OTL.exe
PRC - [2010.06.10 22:46:34 | 000,133,368 | ---- | M] (ICQ, LLC.) -- C:\Program Files\ICQ7.2\ICQ.exe
PRC - [2010.05.06 22:59:42 | 002,815,192 | ---- | M] (ALWIL Software) -- C:\Programme\Alwil Software\Avast5\AvastUI.exe
PRC - [2010.05.06 22:59:38 | 000,040,384 | ---- | M] (ALWIL Software) -- C:\Programme\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010.04.29 12:19:20 | 000,437,584 | ---- | M] (Malwarebytes Corporation) -- C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2010.04.29 12:19:20 | 000,304,464 | ---- | M] (Malwarebytes Corporation) -- C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2010.04.01 20:00:17 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Programme\Mozilla Firefox\firefox.exe
PRC - [2009.10.31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009.10.14 13:36:56 | 002,793,304 | ---- | M] () -- C:\Programme\Logitech\Logitech WebCam Software\LWS.exe
PRC - [2009.10.14 13:34:18 | 000,560,472 | ---- | M] () -- C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
PRC - [2009.10.07 01:47:34 | 000,154,136 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
PRC - [2009.07.16 15:35:42 | 005,458,704 | ---- | M] (Logitech Inc.) -- C:\Programme\Logitech\Logitech Vid\Vid.exe
PRC - [2009.07.14 03:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009.07.14 03:14:24 | 000,157,184 | ---- | M] (Microsoft Corporation) -- c:\program files\windows defender\MpCmdRun.exe
PRC - [2007.07.17 15:48:16 | 000,180,224 | ---- | M] () -- C:\Windows\System32\WinService.exe
PRC - [2006.11.03 09:56:28 | 000,920,576 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Media Player\wmpnetwk.exe
PRC - [2006.07.30 22:59:36 | 001,101,824 | ---- | M] () -- C:\Programme\NETGEAR\WG111v2\WG111v2.exe
 
 
========== Modules (SafeList) ==========
 
MOD - [2010.06.19 18:13:09 | 000,572,416 | ---- | M] (OldTimer Tools) -- C:\Users\BlaZteR\Downloads\OTL.exe
MOD - [2009.07.14 03:16:15 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspicli.dll
MOD - [2009.07.14 03:16:13 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sechost.dll
MOD - [2009.07.14 03:16:13 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samcli.dll
MOD - [2009.07.14 03:16:12 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profapi.dll
MOD - [2009.07.14 03:16:03 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netutils.dll
MOD - [2009.07.14 03:15:35 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KernelBase.dll
MOD - [2009.07.14 03:15:13 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll
MOD - [2009.07.14 03:15:11 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devobj.dll
MOD - [2009.07.14 03:15:07 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptbase.dll
MOD - [2009.07.14 03:15:02 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll
MOD - [2009.07.14 03:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscript.ocx
MOD - [2009.07.14 03:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll
 
 
========== Win32 Services (SafeList) ==========
 
SRV - [2010.06.13 20:57:02 | 000,395,048 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2010.05.06 22:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010.05.06 22:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010.05.06 22:59:38 | 000,040,384 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010.04.29 15:39:34 | 000,304,464 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2009.10.07 01:47:34 | 000,154,136 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
SRV - [2009.07.14 03:16:21 | 000,185,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wwansvc.dll -- (WwanSvc)
SRV - [2009.07.14 03:16:17 | 000,151,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc)
SRV - [2009.07.14 03:16:17 | 000,119,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpo.dll -- (Power)
SRV - [2009.07.14 03:16:16 | 000,037,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2009.07.14 03:16:15 | 000,053,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sppuinotify.dll -- (sppuinotify)
SRV - [2009.07.14 03:16:13 | 000,043,520 | ---- | M] (Microsoft Corporation) [Unknown | Running] -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper)
SRV - [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.07.14 03:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc)
SRV - [2009.07.14 03:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc)
SRV - [2009.07.14 03:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider)
SRV - [2009.07.14 03:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg)
SRV - [2009.07.14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV - [2009.07.14 03:15:36 | 000,194,560 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener)
SRV - [2009.07.14 03:15:21 | 000,797,696 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2009.07.14 03:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2009.07.14 03:15:10 | 000,218,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\defragsvc.dll -- (defragsvc)
SRV - [2009.07.14 03:14:59 | 000,076,800 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\bdesvc.dll -- (BDESVC)
SRV - [2009.07.14 03:14:58 | 000,088,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AxInstSv.dll -- (AxInstSV) ActiveX-Installer (AxInstSV)
SRV - [2009.07.14 03:14:53 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc)
SRV - [2009.07.14 03:14:29 | 003,179,520 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\sppsvc.exe -- (sppsvc)
SRV - [2007.07.17 15:48:16 | 000,180,224 | ---- | M] () [Auto | Running] -- C:\Windows\System32\WinService.exe -- (SCM_Service)
 
 
========== Driver Services (SafeList) ==========
 
DRV - [2010.05.06 22:39:23 | 000,046,672 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2010.05.06 22:39:00 | 000,164,048 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2010.05.06 22:34:27 | 000,023,376 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2010.05.06 22:34:10 | 000,051,792 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2010.05.06 22:33:47 | 000,019,024 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010.04.29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2009.12.11 09:44:02 | 000,133,720 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\ksecpkg.sys -- (KSecPkg)
DRV - [2009.10.07 01:46:36 | 000,025,752 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2009.09.27 23:12:22 | 009,509,832 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009.07.14 03:26:21 | 000,015,952 | ---- | M] (CMD Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\cmdide.sys -- (cmdide)
DRV - [2009.07.14 03:26:17 | 000,297,552 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpahci.sys -- (adpahci)
DRV - [2009.07.14 03:26:15 | 000,422,976 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adp94xx.sys -- (adp94xx)
DRV - [2009.07.14 03:26:15 | 000,159,312 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsbs.sys -- (amdsbs)
DRV - [2009.07.14 03:26:15 | 000,146,512 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpu320.sys -- (adpu320)
DRV - [2009.07.14 03:26:15 | 000,086,608 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arcsas.sys -- (arcsas)
DRV - [2009.07.14 03:26:15 | 000,079,952 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsata.sys -- (amdsata)
DRV - [2009.07.14 03:26:15 | 000,076,368 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arc.sys -- (arc)
DRV - [2009.07.14 03:26:15 | 000,023,616 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\amdxata.sys -- (amdxata)
DRV - [2009.07.14 03:26:15 | 000,014,400 | ---- | M] (Acer Laboratories Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\aliide.sys -- (aliide)
DRV - [2009.07.14 03:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvstor.sys -- (nvstor)
DRV - [2009.07.14 03:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvraid.sys -- (nvraid)
DRV - [2009.07.14 03:20:44 | 000,044,624 | ---- | M] (IBM Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nfrd960.sys -- (nfrd960)
DRV - [2009.07.14 03:20:37 | 000,089,168 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas.sys -- (LSI_SAS)
DRV - [2009.07.14 03:20:36 | 000,332,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iaStorV.sys -- (iaStorV)
DRV - [2009.07.14 03:20:36 | 000,235,584 | ---- | M] (LSI Corporation, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MegaSR.sys -- (MegaSR)
DRV - [2009.07.14 03:20:36 | 000,096,848 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2009.07.14 03:20:36 | 000,095,824 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_fc.sys -- (LSI_FC)
DRV - [2009.07.14 03:20:36 | 000,054,864 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas2.sys -- (LSI_SAS2)
DRV - [2009.07.14 03:20:36 | 000,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iirsp.sys -- (iirsp)
DRV - [2009.07.14 03:20:36 | 000,030,800 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\megasas.sys -- (megasas)
DRV - [2009.07.14 03:20:36 | 000,013,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy)
DRV - [2009.07.14 03:20:28 | 000,453,712 | ---- | M] (Emulex) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\elxstor.sys -- (elxstor)
DRV - [2009.07.14 03:20:28 | 000,070,720 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\djsvs.sys -- (aic78xx)
DRV - [2009.07.14 03:20:28 | 000,067,152 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\HpSAMD.sys -- (HpSAMD)
DRV - [2009.07.14 03:20:28 | 000,046,160 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\fsdepends.sys -- (FsDepends)
DRV - [2009.07.14 03:19:11 | 000,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vsmraid.sys -- (vsmraid)
DRV - [2009.07.14 03:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus)
DRV - [2009.07.14 03:19:10 | 000,159,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vhdmp.sys -- (vhdmp)
DRV - [2009.07.14 03:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vmstorfl.sys -- (storflt)
DRV - [2009.07.14 03:19:10 | 000,032,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vdrvroot.sys -- (vdrvroot)
DRV - [2009.07.14 03:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount)
DRV - [2009.07.14 03:19:10 | 000,016,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\viaide.sys -- (viaide)
DRV - [2009.07.14 03:19:04 | 001,383,488 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql2300.sys -- (ql2300)
DRV - [2009.07.14 03:19:04 | 000,173,648 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost)
DRV - [2009.07.14 03:19:04 | 000,106,064 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql40xx.sys -- (ql40xx)
DRV - [2009.07.14 03:19:04 | 000,077,888 | ---- | M] (Silicon Integrated Systems) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\sisraid4.sys -- (SiSRaid4)
DRV - [2009.07.14 03:19:04 | 000,043,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pcw.sys -- (pcw)
DRV - [2009.07.14 03:19:04 | 000,040,016 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\SiSRaid2.sys -- (SiSRaid2)
DRV - [2009.07.14 03:19:04 | 000,021,072 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\stexstor.sys -- (stexstor)
DRV - [2009.07.14 03:17:54 | 000,369,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\cng.sys -- (CNG)
DRV - [2009.07.14 02:57:25 | 000,272,128 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\Brserid.sys -- (Brserid) Brother MFC-Seriellschnittstellentreiber (WDM)
DRV - [2009.07.14 02:02:41 | 000,018,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rdpbus.sys -- (rdpbus)
DRV - [2009.07.14 02:01:41 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV - [2009.07.14 01:55:00 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV - [2009.07.14 01:53:51 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\wfplwf.sys -- (WfpLwf)
DRV - [2009.07.14 01:52:44 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ndiscap.sys -- (NdisCap)
DRV - [2009.07.14 01:52:02 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vwifibus.sys -- (vwifibus)
DRV - [2009.07.14 01:52:00 | 000,163,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\1394ohci.sys -- (1394ohci)
DRV - [2009.07.14 01:51:35 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\umpass.sys -- (UmPass)
DRV - [2009.07.14 01:51:23 | 000,080,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\USBAUDIO.sys -- (usbaudio) USB-Audiotreiber (WDM)
DRV - [2009.07.14 01:51:08 | 000,004,096 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV - [2009.07.14 01:46:55 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MTConfig.sys -- (MTConfig)
DRV - [2009.07.14 01:45:26 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CompositeBus.sys -- (CompositeBus)
DRV - [2009.07.14 01:36:52 | 000,050,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\appid.sys -- (AppID)
DRV - [2009.07.14 01:33:50 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | Unknown | Stopped] -- C:\Windows\System32\drivers\scfilter.sys -- (scfilter)
DRV - [2009.07.14 01:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap)
DRV - [2009.07.14 01:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID)
DRV - [2009.07.14 01:24:05 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\discache.sys -- (discache)
DRV - [2009.07.14 01:19:21 | 000,021,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\HidBatt.sys -- (HidBatt)
DRV - [2009.07.14 01:16:36 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\acpipmi.sys -- (AcpiPmi)
DRV - [2009.07.14 01:11:04 | 000,052,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdppm.sys -- (AmdPPM)
DRV - [2009.07.14 00:54:14 | 000,026,624 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009.07.14 00:53:33 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm) Brother MFC-nur-Fax-Modem (USB)
DRV - [2009.07.14 00:53:33 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer) Brother MFC-WDM-Treiber (USB,seriell)
DRV - [2009.07.14 00:53:32 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm) Brother WDM-Treiber (seriell)
DRV - [2009.07.14 00:53:28 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltLo.sys -- (BrFiltLo)
DRV - [2009.07.14 00:53:28 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltUp.sys -- (BrFiltUp)
DRV - [2009.07.14 00:02:52 | 000,347,264 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvm62x32.sys -- (NVENETFD)
DRV - [2009.07.14 00:02:50 | 000,118,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel(R)
DRV - [2009.07.14 00:02:49 | 000,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x)
DRV - [2009.07.14 00:02:48 | 003,100,160 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\evbdx.sys -- (ebdrv)
DRV - [2009.07.14 00:02:48 | 000,430,080 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\bxvbdx.sys -- (b06bdrv)
DRV - [2008.07.26 15:26:22 | 000,041,752 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2008.07.26 15:22:34 | 002,570,520 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LV302V32.SYS -- (PID_PEPI) Logitech QuickCam IM(PID_PEPI)
DRV - [2007.12.26 10:46:00 | 000,288,768 | ---- | M] (NETGEAR Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wg111v2.sys -- (RTL8187)
DRV - [2007.01.19 03:20:54 | 000,021,728 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\scmndisp.sys -- (SCMNdisP)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://de.msn.com/?ocid=iehp [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 01 3F 3B D7 CB 08 CB 01  [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..extensions.enabledItems: {75656794-AB59-4712-BFBC-5D816D56F3BC}:1.1.3
FF - prefs.js..extensions.enabledItems: {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1
 
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.10.12 23:07:25 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.05.22 18:50:57 | 000,000,000 | ---D | M]
 
[2010.06.10 22:20:53 | 000,000,000 | ---D | M] -- C:\Users\BlaZteR\AppData\Roaming\mozilla\Extensions
[2010.06.18 20:32:07 | 000,000,000 | ---D | M] -- C:\Users\BlaZteR\AppData\Roaming\mozilla\Firefox\Profiles\9e8wh74r.default\extensions
[2010.06.13 18:16:02 | 000,000,000 | ---D | M] (HypreCam Toolbar) -- C:\Users\BlaZteR\AppData\Roaming\mozilla\Firefox\Profiles\9e8wh74r.default\extensions\{75656794-AB59-4712-BFBC-5D816D56F3BC}
[2010.06.13 18:36:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\BlaZteR\AppData\Roaming\mozilla\Firefox\Profiles\9e8wh74r.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2010.06.10 22:20:40 | 000,000,000 | ---D | M] -- C:\Programme\Mozilla Firefox\extensions
[2010.04.01 18:54:38 | 000,001,392 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\amazondotcom-de.xml
[2010.04.01 18:54:38 | 000,002,344 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\eBay-de.xml
[2010.04.01 18:54:38 | 000,006,805 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\leo_ende_de.xml
[2010.04.01 18:54:38 | 000,001,178 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wikipedia-de.xml
[2010.04.01 18:54:38 | 000,001,105 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (SMTTB2009 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Programme\HypreCam Toolbar\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (HypreCam Toolbar) - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Programme\HypreCam Toolbar\tbcore3.dll ()
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (ALWIL Software)
O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe ()
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKCU..\Run: [ICQ] C:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O4 - HKCU..\Run: [Logitech Vid] C:\Program Files\Logitech\Logitech Vid\vid.exe (Logitech Inc.)
O4 - HKCU..\Run: [Steam] C:\Program Files\Steam\Steam.exe (Valve Corporation)
O4 - Startup: C:\Users\BlaZteR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Produktregistrierung.lnk = C:\Programme\Logitech\Logitech WebCam Software\eReg.exe (Leader Technologies/Logitech)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\BlaZteR\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm ()
O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O13 - gopher Prefix: missing
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: GinaDLL - (RtlGina2.dll) - C:\Windows\System32\RtlGina2.dll ()
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 30 Days ==========
 
[2010.10.12 23:28:18 | 000,000,000 | R--D | C] -- C:\Programme
[2010.10.12 23:27:12 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2010.10.12 23:27:12 | 000,000,000 | ---D | C] -- C:\Dokumente und Einstellungen
[2010.10.12 22:41:43 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010.06.19 18:09:28 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010.06.19 18:09:27 | 000,000,000 | ---D | C] -- C:\rsit
[2010.06.18 20:33:08 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\AppData\Roaming\Malwarebytes
[2010.06.18 20:32:55 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010.06.18 20:32:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010.06.18 20:32:53 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010.06.18 20:32:53 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware
[2010.06.18 20:26:44 | 000,000,000 | ---D | C] -- C:\ProgramData\SecTaskMan
[2010.06.17 15:50:43 | 000,000,000 | ---D | C] -- C:\Programme\GildenIdent
[2010.06.15 12:26:11 | 000,469,504 | ---- | C] (MoreQuick.com) -- C:\Users\BlaZteR\Desktop\GreenBrowser.exe
[2010.06.14 20:23:40 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\Desktop\PEH12
[2010.06.14 20:03:08 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\Desktop\PEH
[2010.06.14 18:55:40 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\AppData\Local\WMTools Downloaded Files
[2010.06.14 18:37:38 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\AppData\Local\TechSmith
[2010.06.14 18:37:29 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\Documents\Camtasia Studio
[2010.06.14 18:37:08 | 000,000,000 | ---D | C] -- C:\Windows\System32\QuickTime
[2010.06.14 18:36:40 | 000,000,000 | ---D | C] -- C:\ProgramData\TechSmith
[2010.06.14 18:36:32 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2010.06.14 18:36:19 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\TechSmith Shared
[2010.06.14 18:36:16 | 000,000,000 | ---D | C] -- C:\Program Files\TechSmith
[2010.06.13 20:55:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Steam
[2010.06.13 20:54:59 | 000,000,000 | ---D | C] -- C:\Program Files\Steam
[2010.06.13 18:36:05 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\AppData\Roaming\DVDVideoSoftIEHelpers
[2010.06.13 18:35:53 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\Documents\DVDVideoSoft
[2010.06.13 18:35:36 | 000,000,000 | ---D | C] -- C:\Programme\DVDVideoSoft
[2010.06.13 18:35:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DVDVideoSoft
[2010.06.13 18:16:01 | 000,000,000 | ---D | C] -- C:\Programme\HypreCam Toolbar
[2010.06.13 18:15:57 | 000,000,000 | ---D | C] -- C:\Programme\HyCam2
[2010.06.13 15:50:52 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\Documents\ICQ
[2010.06.11 17:29:21 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2010.06.11 17:28:57 | 000,490,088 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvuninst.exe
[2010.06.11 16:44:27 | 000,000,000 | ---D | C] -- C:\Windows\System32\appmgmt
[2010.06.11 16:43:16 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\Desktop\STEAM
[2010.06.11 15:02:00 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\Desktop\TShacks
[2010.06.11 14:59:02 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\AppData\Roaming\WinRAR
[2010.06.11 14:57:09 | 000,000,000 | ---D | C] -- C:\Programme\WinRAR
[2010.06.10 22:50:45 | 000,034,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lhacm.acm
[2010.06.10 22:50:42 | 000,000,000 | ---D | C] -- C:\Programme\Teamspeak2_RC2
[2010.06.10 22:46:36 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\AppData\Roaming\ICQ
[2010.06.10 22:46:36 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\AppData\Local\AOL
[2010.06.10 22:46:33 | 000,000,000 | ---D | C] -- C:\Program Files\ICQ7.2
[2010.06.10 22:44:28 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\AppData\Roaming\teamspeak2
[2010.06.10 22:20:48 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\AppData\Roaming\Mozilla
[2010.06.10 22:20:48 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\AppData\Local\Mozilla
[2010.06.10 22:20:39 | 000,000,000 | ---D | C] -- C:\Programme\Mozilla Firefox
[2010.06.10 21:57:30 | 000,164,048 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswSP.sys
[2010.06.10 21:57:30 | 000,019,024 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
[2010.06.10 21:57:29 | 000,023,376 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2010.06.10 21:57:25 | 000,046,672 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2010.06.10 21:57:24 | 000,051,792 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2010.06.10 21:57:15 | 000,165,032 | ---- | C] (ALWIL Software) -- C:\Windows\System32\aswBoot.exe
[2010.06.10 21:57:15 | 000,038,848 | ---- | C] (ALWIL Software) -- C:\Windows\System32\avastSS.scr
[2010.06.10 21:44:50 | 000,000,000 | ---D | C] -- C:\Programme\Alwil Software
[2010.06.10 21:44:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Alwil Software
[2010.06.10 21:31:48 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe
[2010.06.10 21:31:07 | 000,427,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll
[2010.06.10 21:31:06 | 002,614,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2010.06.10 21:31:06 | 001,328,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2010.06.10 21:31:06 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2010.06.10 21:31:06 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2010.06.10 21:31:05 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CPFilters.dll
[2010.06.10 21:31:05 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2010.06.10 21:31:05 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdri.dll
[2010.06.10 21:31:05 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax
[2010.06.10 21:31:03 | 001,037,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll
[2010.06.10 21:31:03 | 000,133,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ksecpkg.sys
[2010.06.10 21:31:02 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2010.06.10 21:31:02 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
[2010.06.10 21:31:00 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2010.06.10 21:31:00 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2010.06.10 21:31:00 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2010.06.10 21:31:00 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2010.06.10 21:30:55 | 000,369,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll
[2010.06.10 21:30:55 | 000,365,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll
[2010.06.10 21:30:55 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe
[2010.06.10 21:30:55 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe
[2010.06.10 21:30:55 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe
[2010.06.10 21:30:55 | 000,277,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe
[2010.06.10 21:30:55 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll
[2010.06.10 21:30:55 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll
[2010.06.10 21:30:54 | 003,954,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010.06.10 21:30:54 | 003,899,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010.06.10 21:30:54 | 002,326,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2010.06.10 21:30:52 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2010.06.10 21:30:51 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2010.06.10 21:29:39 | 000,293,888 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2010.06.10 21:29:39 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2010.06.10 21:29:39 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2010.06.10 21:21:09 | 000,290,816 | ---- | C] (SerComm Corporation) -- C:\Windows\System32\SCMLib.dll
[2010.06.10 21:21:09 | 000,288,768 | ---- | C] (NETGEAR Inc.) -- C:\Windows\System32\drivers\wg111v2.sys
[2010.06.10 21:21:09 | 000,021,728 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\System32\drivers\SCMNdisP.sys
[2010.06.10 21:20:56 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\AppData\Roaming\InstallShield
[2010.06.10 21:17:13 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\AppData\Local\ElevatedDiagnostics
[2010.06.10 21:16:06 | 000,000,000 | ---D | C] -- C:\Programme\NETGEAR
[2010.06.10 21:03:58 | 000,000,000 | ---D | C] -- C:\Windows.old
[2010.06.10 20:38:23 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\AppData\Roaming\Macromedia
[2010.06.10 20:38:22 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\AppData\Roaming\Adobe
[2010.06.10 20:38:16 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2010.06.10 20:34:14 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\AppData\Local\LogiShrd
[2010.06.10 20:34:02 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\AppData\Roaming\Leadertech
[2010.06.10 20:33:56 | 000,000,000 | ---D | C] -- C:\ProgramData\LogiShrd
[2010.06.10 20:33:55 | 000,000,000 | ---D | C] -- C:\Programme\Logitech
[2010.06.10 20:30:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\logishrd
[2010.06.10 20:23:28 | 000,000,000 | -H-D | C] -- C:\Programme\InstallShield Installation Information
[2010.06.10 20:22:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2010.06.10 20:22:47 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2010.06.10 20:19:08 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\AppData\Local\Diagnostics
[2010.06.10 20:18:09 | 000,000,000 | R--D | C] -- C:\Users\BlaZteR\Searches
[2010.06.10 20:18:00 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\AppData\Roaming\Identities
[2010.06.10 20:17:54 | 000,000,000 | R--D | C] -- C:\Users\BlaZteR\Contacts
[2010.06.10 20:17:41 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\AppData\Local\VirtualStore
[2010.06.10 20:17:36 | 000,000,000 | -HSD | C] -- C:\Users\BlaZteR\Vorlagen
[2010.06.10 20:17:36 | 000,000,000 | -HSD | C] -- C:\Users\BlaZteR\AppData\Local\Verlauf
[2010.06.10 20:17:36 | 000,000,000 | -HSD | C] -- C:\Users\BlaZteR\AppData\Local\Temporary Internet Files
[2010.06.10 20:17:36 | 000,000,000 | -HSD | C] -- C:\Users\BlaZteR\Startmenü
[2010.06.10 20:17:36 | 000,000,000 | -HSD | C] -- C:\Users\BlaZteR\SendTo
[2010.06.10 20:17:36 | 000,000,000 | -HSD | C] -- C:\Users\BlaZteR\Recent
[2010.06.10 20:17:36 | 000,000,000 | -HSD | C] -- C:\Users\BlaZteR\Netzwerkumgebung
[2010.06.10 20:17:36 | 000,000,000 | -HSD | C] -- C:\Users\BlaZteR\Lokale Einstellungen
[2010.06.10 20:17:36 | 000,000,000 | -HSD | C] -- C:\Users\BlaZteR\Documents\Eigene Videos
[2010.06.10 20:17:36 | 000,000,000 | -HSD | C] -- C:\Users\BlaZteR\Documents\Eigene Musik
[2010.06.10 20:17:36 | 000,000,000 | -HSD | C] -- C:\Users\BlaZteR\Eigene Dateien
[2010.06.10 20:17:36 | 000,000,000 | -HSD | C] -- C:\Users\BlaZteR\Documents\Eigene Bilder
[2010.06.10 20:17:36 | 000,000,000 | -HSD | C] -- C:\Users\BlaZteR\Druckumgebung
[2010.06.10 20:17:36 | 000,000,000 | -HSD | C] -- C:\Users\BlaZteR\Cookies
[2010.06.10 20:17:36 | 000,000,000 | -HSD | C] -- C:\Users\BlaZteR\AppData\Local\Anwendungsdaten
[2010.06.10 20:17:36 | 000,000,000 | -HSD | C] -- C:\Users\BlaZteR\Anwendungsdaten
[2010.06.10 20:17:35 | 000,000,000 | --SD | C] -- C:\Users\BlaZteR\AppData\Roaming\Microsoft
[2010.06.10 20:17:35 | 000,000,000 | R--D | C] -- C:\Users\BlaZteR\Videos
[2010.06.10 20:17:35 | 000,000,000 | R--D | C] -- C:\Users\BlaZteR\Saved Games
[2010.06.10 20:17:35 | 000,000,000 | R--D | C] -- C:\Users\BlaZteR\Pictures
[2010.06.10 20:17:35 | 000,000,000 | R--D | C] -- C:\Users\BlaZteR\Music
[2010.06.10 20:17:35 | 000,000,000 | R--D | C] -- C:\Users\BlaZteR\Links
[2010.06.10 20:17:35 | 000,000,000 | R--D | C] -- C:\Users\BlaZteR\Favorites
[2010.06.10 20:17:35 | 000,000,000 | R--D | C] -- C:\Users\BlaZteR\Downloads
[2010.06.10 20:17:35 | 000,000,000 | R--D | C] -- C:\Users\BlaZteR\Documents
[2010.06.10 20:17:35 | 000,000,000 | R--D | C] -- C:\Users\BlaZteR\Desktop
[2010.06.10 20:17:35 | 000,000,000 | -H-D | C] -- C:\Users\BlaZteR\AppData
[2010.06.10 20:17:35 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\AppData\Local\Temp
[2010.06.10 20:17:35 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\AppData\Local\Microsoft
[2010.06.10 20:17:35 | 000,000,000 | ---D | C] -- C:\Users\BlaZteR\AppData\Roaming\Media Center Programs
[2010.06.10 20:15:34 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen
[2010.06.10 20:15:34 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü
[2010.06.10 20:15:34 | 000,000,000 | -HSD | C] -- C:\Recovery
[2010.06.10 20:15:34 | 000,000,000 | -HSD | C] -- C:\Programme\Gemeinsame Dateien
[2010.06.10 20:15:34 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten
[2010.06.10 20:15:34 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos
[2010.06.10 20:15:34 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik
[2010.06.10 20:15:34 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder
[2010.06.10 20:15:34 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente
[2010.06.10 20:15:34 | 000,000,000 | -HSD | C] -- C:\ProgramData\Desktop
[2010.06.10 20:15:34 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten
[2010.06.10 20:12:24 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2010.06.10 20:09:41 | 000,000,000 | ---D | C] -- C:\Windows\CSC
[2010.06.10 20:02:17 | 000,000,000 | -HSD | C] -- C:\Boot
[2010.06.02 19:00:39 | 000,000,000 | ---D | C] -- C:\srcds
 
========== Files - Modified Within 30 Days ==========
 
[2010.06.19 18:14:52 | 001,048,576 | -HS- | M] () -- C:\Users\BlaZteR\NTUSER.DAT
[2010.06.19 17:39:21 | 001,472,002 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010.06.19 17:39:21 | 000,643,628 | ---- | M] () -- C:\Windows\System32\perfh007.dat
[2010.06.19 17:39:21 | 000,606,992 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010.06.19 17:39:21 | 000,126,188 | ---- | M] () -- C:\Windows\System32\perfc007.dat
[2010.06.19 17:39:21 | 000,103,370 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010.06.19 17:38:07 | 000,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010.06.19 17:38:07 | 000,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010.06.19 17:33:05 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010.06.19 17:33:00 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.06.19 17:32:56 | 1408,737,280 | -HS- | M] () -- C:\hiberfil.sys
[2010.06.18 21:41:02 | 002,140,229 | -H-- | M] () -- C:\Users\BlaZteR\AppData\Local\IconCache.db
[2010.06.18 20:32:57 | 000,000,983 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.06.17 15:50:44 | 000,001,031 | ---- | M] () -- C:\Users\BlaZteR\Desktop\GildenIdent.lnk
[2010.06.15 12:06:10 | 000,001,186 | ---- | M] () -- C:\Users\BlaZteR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Produktregistrierung.lnk
[2010.06.14 18:49:51 | 000,003,584 | ---- | M] () -- C:\Users\BlaZteR\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.06.14 18:36:58 | 000,001,126 | ---- | M] () -- C:\Users\Public\Desktop\Camtasia Studio 7.lnk
[2010.06.14 15:48:31 | 000,001,823 | ---- | M] () -- C:\Users\BlaZteR\Desktop\Steam.lnk
[2010.06.14 14:40:56 | 000,000,875 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk
[2010.06.13 19:06:59 | 121,306,494 | ---- | M] () -- C:\Users\BlaZteR\Documents\broswer_cam0020.avi
[2010.06.13 19:00:51 | 022,967,044 | ---- | M] () -- C:\Users\BlaZteR\Documents\broswer_cam0019.avi
[2010.06.13 18:55:56 | 043,671,830 | ---- | M] () -- C:\Users\BlaZteR\Documents\broswer_cam0018.avi
[2010.06.13 18:55:34 | 004,347,510 | ---- | M] () -- C:\Users\BlaZteR\Documents\broswer_cam0017.avi
[2010.06.13 18:55:32 | 341,633,362 | ---- | M] () -- C:\Users\BlaZteR\Documents\broswer_cam0016.avi
[2010.06.13 18:42:43 | 061,315,222 | ---- | M] () -- C:\Users\BlaZteR\Documents\broswer_cam0015.avi
[2010.06.13 18:42:07 | 065,369,500 | ---- | M] () -- C:\Users\BlaZteR\Documents\broswer_cam0014.avi
[2010.06.13 18:41:29 | 056,555,376 | ---- | M] () -- C:\Users\BlaZteR\Documents\broswer_cam0013.avi
[2010.06.13 18:41:02 | 037,345,512 | ---- | M] () -- C:\Users\BlaZteR\Documents\broswer_cam0012.avi
[2010.06.13 18:36:01 | 000,001,201 | ---- | M] () -- C:\Users\BlaZteR\Desktop\DVDVideoSoft Free Studio.lnk
[2010.06.13 18:34:16 | 378,516,234 | ---- | M] () -- C:\Users\BlaZteR\Documents\broswer_cam0011.avi
[2010.06.13 18:31:08 | 009,701,144 | ---- | M] () -- C:\Users\BlaZteR\Documents\broswer_cam0010.avi
[2010.06.13 18:30:17 | 010,352,486 | ---- | M] () -- C:\Users\BlaZteR\Documents\broswer_cam0009.avi
[2010.06.13 18:26:41 | 001,750,212 | ---- | M] () -- C:\Users\BlaZteR\Documents\broswer_cam0008.avi
[2010.06.13 18:25:43 | 033,390,962 | ---- | M] () -- C:\Users\BlaZteR\Documents\broswer_cam0007.avi
[2010.06.13 18:25:16 | 175,353,426 | ---- | M] () -- C:\Users\BlaZteR\Documents\broswer_cam0006.avi
[2010.06.13 18:23:56 | 027,462,776 | ---- | M] () -- C:\Users\BlaZteR\Documents\broswer_cam0005.avi
[2010.06.13 18:23:38 | 022,365,852 | ---- | M] () -- C:\Users\BlaZteR\Documents\broswer_cam0004.avi
[2010.06.13 18:23:18 | 022,737,338 | ---- | M] () -- C:\Users\BlaZteR\Documents\broswer_cam0003.avi
[2010.06.13 18:17:04 | 003,141,532 | ---- | M] () -- C:\Users\BlaZteR\Documents\broswer_cam0002.avi
[2010.06.13 18:16:36 | 015,026,580 | ---- | M] () -- C:\Users\BlaZteR\Documents\broswer_cam0001.avi
[2010.06.13 16:06:32 | 000,007,605 | ---- | M] () -- C:\Users\BlaZteR\AppData\Local\Resmon.ResmonCfg
[2010.06.11 20:12:25 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_nnfwdk_01009.Wdf
[2010.06.11 16:41:13 | 000,057,560 | ---- | M] () -- C:\Users\BlaZteR\AppData\Local\GDIPFONTCACHEV1.DAT
[2010.06.10 22:50:45 | 000,034,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lhacm.acm
[2010.06.10 22:50:44 | 000,000,952 | ---- | M] () -- C:\Users\BlaZteR\Desktop\Teamspeak 2 RC2.lnk
[2010.06.10 22:20:42 | 000,001,889 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010.06.10 21:57:31 | 000,002,009 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2010.06.10 21:57:23 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2010.06.10 21:36:07 | 000,001,754 | ---- | M] () -- C:\Users\Public\Desktop\Browserwahl.lnk
[2010.06.10 21:35:44 | 000,265,640 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010.06.10 21:23:29 | 000,001,093 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WG111v2 Smart Wizard.lnk
[2010.06.10 21:23:29 | 000,001,075 | ---- | M] () -- C:\Users\Public\Desktop\NETGEAR WG111v2 Smart Wizard.lnk
[2010.06.10 21:16:08 | 000,001,019 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WG111v2 Smart Wizard..lnk
[2010.06.10 21:08:17 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2010.06.10 21:08:16 | 000,000,355 | RHS- | M] () -- C:\Boot.ini.saved
[2010.06.10 20:40:08 | 000,004,796 | ---- | M] () -- C:\Windows\Ascd_tmp.ini
[2010.06.10 20:34:10 | 000,001,023 | ---- | M] () -- C:\Users\Public\Desktop\Logitech Vid.lnk
[2010.06.10 20:33:57 | 000,002,093 | ---- | M] () -- C:\Users\Public\Desktop\Logitech-Webkamera-Software.lnk
[2010.06.10 20:30:29 | 000,524,288 | -HS- | M] () -- C:\Users\BlaZteR\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2010.06.10 20:30:29 | 000,524,288 | -HS- | M] () -- C:\Users\BlaZteR\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2010.06.10 20:30:29 | 000,065,536 | -HS- | M] () -- C:\Users\BlaZteR\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2010.06.10 20:17:36 | 000,000,020 | -HS- | M] () -- C:\Users\BlaZteR\ntuser.ini
[2010.06.10 20:15:59 | 000,171,136 | RHS- | M] () -- C:\w7ldr
[2010.06.10 20:11:38 | 000,057,050 | ---- | M] () -- C:\Windows\System32\license.rtf
[2010.06.09 12:56:08 | 000,469,504 | ---- | M] (MoreQuick.com) -- C:\Users\BlaZteR\Desktop\GreenBrowser.exe
[2010.06.08 17:20:39 | 006,152,192 | -H-- | M] () -- C:\ffastun0.ffx
[2010.06.08 17:20:39 | 000,860,160 | -H-- | M] () -- C:\ffastun.ffl
[2010.06.08 17:20:39 | 000,282,624 | -H-- | M] () -- C:\ffastun.ffo
[2010.06.08 17:20:39 | 000,005,014 | -H-- | M] () -- C:\ffastun.ffa
[2010.05.27 09:24:13 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2010.05.27 05:49:37 | 000,293,888 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2010.05.26 15:48:37 | 000,000,211 | -H-- | M] () -- C:\Boot.BAK
[2010.05.25 16:35:22 | 000,000,000 | ---- | M] () -- C:\winped
[2010.05.25 16:34:52 | 000,000,000 | ---- | M] () -- C:\Steam Gamex Crashed Exploit
[2010.05.21 14:14:28 | 000,221,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2010.05.21 07:14:50 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
 
========== Files Created - No Company Name ==========
 
[2010.10.13 00:26:32 | 000,000,355 | RHS- | C] () -- C:\Boot.ini.saved
[2010.06.18 20:32:57 | 000,000,983 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.06.17 15:50:44 | 000,001,031 | ---- | C] () -- C:\Users\BlaZteR\Desktop\GildenIdent.lnk
[2010.06.14 18:49:51 | 000,003,584 | ---- | C] () -- C:\Users\BlaZteR\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.06.14 18:36:58 | 000,001,126 | ---- | C] () -- C:\Users\Public\Desktop\Camtasia Studio 7.lnk
[2010.06.14 15:48:31 | 000,001,823 | ---- | C] () -- C:\Users\BlaZteR\Desktop\Steam.lnk
[2010.06.13 20:55:00 | 000,000,875 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk
[2010.06.13 19:06:05 | 121,306,494 | ---- | C] () -- C:\Users\BlaZteR\Documents\broswer_cam0020.avi
[2010.06.13 19:00:42 | 022,967,044 | ---- | C] () -- C:\Users\BlaZteR\Documents\broswer_cam0019.avi
[2010.06.13 18:55:36 | 043,671,830 | ---- | C] () -- C:\Users\BlaZteR\Documents\broswer_cam0018.avi
[2010.06.13 18:55:33 | 004,347,510 | ---- | C] () -- C:\Users\BlaZteR\Documents\broswer_cam0017.avi
[2010.06.13 18:52:56 | 341,633,362 | ---- | C] () -- C:\Users\BlaZteR\Documents\broswer_cam0016.avi
[2010.06.13 18:42:15 | 061,315,222 | ---- | C] () -- C:\Users\BlaZteR\Documents\broswer_cam0015.avi
[2010.06.13 18:41:37 | 065,369,500 | ---- | C] () -- C:\Users\BlaZteR\Documents\broswer_cam0014.avi
[2010.06.13 18:41:05 | 056,555,376 | ---- | C] () -- C:\Users\BlaZteR\Documents\broswer_cam0013.avi
[2010.06.13 18:40:47 | 037,345,512 | ---- | C] () -- C:\Users\BlaZteR\Documents\broswer_cam0012.avi
[2010.06.13 18:35:54 | 000,001,201 | ---- | C] () -- C:\Users\BlaZteR\Desktop\DVDVideoSoft Free Studio.lnk
[2010.06.13 18:31:15 | 378,516,234 | ---- | C] () -- C:\Users\BlaZteR\Documents\broswer_cam0011.avi
[2010.06.13 18:31:04 | 009,701,144 | ---- | C] () -- C:\Users\BlaZteR\Documents\broswer_cam0010.avi
[2010.06.13 18:30:13 | 010,352,486 | ---- | C] () -- C:\Users\BlaZteR\Documents\broswer_cam0009.avi
[2010.06.13 18:26:40 | 001,750,212 | ---- | C] () -- C:\Users\BlaZteR\Documents\broswer_cam0008.avi
[2010.06.13 18:25:28 | 033,390,962 | ---- | C] () -- C:\Users\BlaZteR\Documents\broswer_cam0007.avi
[2010.06.13 18:23:58 | 175,353,426 | ---- | C] () -- C:\Users\BlaZteR\Documents\broswer_cam0006.avi
[2010.06.13 18:23:44 | 027,462,776 | ---- | C] () -- C:\Users\BlaZteR\Documents\broswer_cam0005.avi
[2010.06.13 18:23:28 | 022,365,852 | ---- | C] () -- C:\Users\BlaZteR\Documents\broswer_cam0004.avi
[2010.06.13 18:23:08 | 022,737,338 | ---- | C] () -- C:\Users\BlaZteR\Documents\broswer_cam0003.avi
[2010.06.13 18:17:03 | 003,141,532 | ---- | C] () -- C:\Users\BlaZteR\Documents\broswer_cam0002.avi
[2010.06.13 18:16:27 | 015,026,580 | ---- | C] () -- C:\Users\BlaZteR\Documents\broswer_cam0001.avi
[2010.06.13 16:06:31 | 000,007,605 | ---- | C] () -- C:\Users\BlaZteR\AppData\Local\Resmon.ResmonCfg
[2010.06.11 20:12:25 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_nnfwdk_01009.Wdf
[2010.06.10 22:50:44 | 000,000,952 | ---- | C] () -- C:\Users\BlaZteR\Desktop\Teamspeak 2 RC2.lnk
[2010.06.10 22:20:42 | 000,001,889 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010.06.10 21:57:31 | 000,002,009 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2010.06.10 21:36:07 | 000,001,754 | ---- | C] () -- C:\Users\Public\Desktop\Browserwahl.lnk
[2010.06.10 21:21:09 | 000,180,224 | ---- | C] () -- C:\Windows\System32\WinService.exe
[2010.06.10 21:16:08 | 000,001,093 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WG111v2 Smart Wizard.lnk
[2010.06.10 21:16:08 | 000,001,075 | ---- | C] () -- C:\Users\Public\Desktop\NETGEAR WG111v2 Smart Wizard.lnk
[2010.06.10 21:16:08 | 000,001,019 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WG111v2 Smart Wizard..lnk
[2010.06.10 21:08:16 | 000,000,211 | -H-- | C] () -- C:\Boot.BAK
[2010.06.10 20:34:10 | 000,001,023 | ---- | C] () -- C:\Users\Public\Desktop\Logitech Vid.lnk
[2010.06.10 20:34:02 | 000,001,186 | ---- | C] () -- C:\Users\BlaZteR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Produktregistrierung.lnk
[2010.06.10 20:33:57 | 000,002,093 | ---- | C] () -- C:\Users\Public\Desktop\Logitech-Webkamera-Software.lnk
[2010.06.10 20:25:45 | 000,004,796 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
[2010.06.10 20:17:36 | 000,000,020 | -HS- | C] () -- C:\Users\BlaZteR\ntuser.ini
[2010.06.10 20:17:35 | 001,048,576 | -HS- | C] () -- C:\Users\BlaZteR\NTUSER.DAT
[2010.06.10 20:17:35 | 000,524,288 | -HS- | C] () -- C:\Users\BlaZteR\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2010.06.10 20:17:35 | 000,524,288 | -HS- | C] () -- C:\Users\BlaZteR\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2010.06.10 20:17:35 | 000,262,144 | -HS- | C] () -- C:\Users\BlaZteR\ntuser.dat.LOG1
[2010.06.10 20:17:35 | 000,065,536 | -HS- | C] () -- C:\Users\BlaZteR\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2010.06.10 20:17:35 | 000,000,000 | -HS- | C] () -- C:\Users\BlaZteR\ntuser.dat.LOG2
[2010.06.10 20:15:59 | 000,171,136 | RHS- | C] () -- C:\w7ldr
[2010.06.10 20:09:13 | 1408,737,280 | -HS- | C] () -- C:\hiberfil.sys
[2010.06.10 20:02:20 | 000,008,192 | RHS- | C] () -- C:\BOOTSECT.BAK
[2010.06.10 20:02:17 | 000,383,562 | RHS- | C] () -- C:\bootmgr
[2010.05.25 16:35:22 | 000,000,000 | ---- | C] () -- C:\winped
[2010.05.25 16:34:52 | 000,000,000 | ---- | C] () -- C:\Steam Gamex Crashed Exploit
[2009.10.07 01:46:36 | 000,025,752 | ---- | C] () -- C:\Windows\System32\drivers\LVPr2Mon.sys
[2009.10.07 01:23:08 | 000,013,584 | ---- | C] () -- C:\Windows\System32\drivers\iKeyLFT2.dll
[2009.07.14 01:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2008.07.26 14:42:52 | 000,066,482 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
[2006.10.11 05:33:58 | 000,010,288 | ---- | C] () -- C:\Windows\System32\drivers\ASUSHWIO.SYS
[2006.05.03 17:44:32 | 000,036,864 | ---- | C] () -- C:\Windows\System32\RtlGina2.dll
 
========== LOP Check ==========
 
[2010.06.13 18:36:05 | 000,000,000 | ---D | M] -- C:\Users\BlaZteR\AppData\Roaming\DVDVideoSoftIEHelpers
[2010.06.19 17:34:46 | 000,000,000 | ---D | M] -- C:\Users\BlaZteR\AppData\Roaming\ICQ
[2010.06.10 20:34:02 | 000,000,000 | ---D | M] -- C:\Users\BlaZteR\AppData\Roaming\Leadertech
[2009.07.14 06:53:46 | 000,006,172 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
 
========== Purity Check ==========
 
 
< End of report >
__________________
Alt 19.06.2010, 17:36   #3
BlaZteR
 
Mein PC wird immer von einer Ip-adresse angegriffen! - Standard

Mein PC wird immer von einer Ip-adresse angegriffen!


ich bekomme ganze zeit meldungen von malware bytes das er eine ip blockt oder so pls hilft mir
Code:
ATTFilter
17:34:15	BlaZteR	MESSAGE	Protection started successfully
17:34:19	BlaZteR	MESSAGE	IP Protection started successfully
17:36:51	BlaZteR	IP-BLOCK	89.149.210.111
17:36:51	BlaZteR	IP-BLOCK	89.149.210.111
17:38:54	BlaZteR	MESSAGE	IP Protection stopped
17:38:55	BlaZteR	MESSAGE	IP Protection started successfully
17:40:08	BlaZteR	MESSAGE	IP Protection stopped
17:40:10	BlaZteR	MESSAGE	IP Protection started successfully
17:43:02	BlaZteR	MESSAGE	IP Protection stopped
17:43:03	BlaZteR	MESSAGE	IP Protection started successfully
17:44:09	BlaZteR	MESSAGE	IP Protection stopped
17:44:12	BlaZteR	MESSAGE	Database updated successfully
17:44:14	BlaZteR	MESSAGE	IP Protection started successfully
18:33:36	BlaZteR	IP-BLOCK	89.149.210.111
18:33:36	BlaZteR	IP-BLOCK	89.149.210.111
18:33:36	BlaZteR	IP-BLOCK	89.149.210.111
18:33:36	BlaZteR	IP-BLOCK	89.149.210.111
18:33:36	BlaZteR	IP-BLOCK	89.149.210.111
18:33:36	BlaZteR	IP-BLOCK	89.149.210.111
18:33:36	BlaZteR	IP-BLOCK	89.149.210.111
18:33:36	BlaZteR	IP-BLOCK	89.149.210.111
18:33:36	BlaZteR	IP-BLOCK	89.149.210.111
18:33:36	BlaZteR	IP-BLOCK	89.149.210.111
18:33:36	BlaZteR	IP-BLOCK	89.149.210.111
18:33:36	BlaZteR	IP-BLOCK	89.149.210.111
18:33:36	BlaZteR	IP-BLOCK	89.149.210.111
18:33:36	BlaZteR	IP-BLOCK	89.149.210.111
18:33:36	BlaZteR	IP-BLOCK	89.149.210.111
18:33:36	BlaZteR	IP-BLOCK	89.149.210.111
18:34:40	BlaZteR	IP-BLOCK	89.149.210.111
18:34:40	BlaZteR	IP-BLOCK	89.149.210.111
18:34:40	BlaZteR	IP-BLOCK	89.149.210.111
18:34:40	BlaZteR	IP-BLOCK	89.149.210.111
18:34:40	BlaZteR	IP-BLOCK	89.149.210.111
18:34:40	BlaZteR	IP-BLOCK	89.149.210.111
18:34:40	BlaZteR	IP-BLOCK	89.149.210.111
18:34:40	BlaZteR	IP-BLOCK	89.149.210.111
18:34:40	BlaZteR	IP-BLOCK	89.149.210.111
18:34:40	BlaZteR	IP-BLOCK	89.149.210.111
18:34:40	BlaZteR	IP-BLOCK	89.149.210.111
18:34:40	BlaZteR	IP-BLOCK	89.149.210.111
__________________
Alt 19.06.2010, 21:45   #4
BlaZteR
 
Mein PC wird immer von einer Ip-adresse angegriffen! - Standard

Mein PC wird immer von einer Ip-adresse angegriffen!


Hallo!
Ich bekomme seit 2 Tagen von Malware Bytes ( Volle Version ) Benachrichtigungen von einer "Ip-Attacke" hier der log von dem
Code:
ATTFilter
21:04:11	BlaZteR	MESSAGE	IP Protection stopped
21:04:13	BlaZteR	MESSAGE	IP Protection started successfully
21:05:26	BlaZteR	MESSAGE	IP Protection stopped
21:05:27	BlaZteR	MESSAGE	IP Protection started successfully
21:58:08	BlaZteR	IP-BLOCK	89.149.210.111
21:58:08	BlaZteR	IP-BLOCK	89.149.210.111
21:58:08	BlaZteR	IP-BLOCK	89.149.210.111
21:58:08	BlaZteR	IP-BLOCK	89.149.210.111
21:58:08	BlaZteR	IP-BLOCK	89.149.210.111
21:58:09	BlaZteR	IP-BLOCK	89.149.210.111
21:58:09	BlaZteR	IP-BLOCK	89.149.210.111
21:58:09	BlaZteR	IP-BLOCK	89.149.210.111
21:58:49	BlaZteR	IP-BLOCK	89.149.210.111
21:58:49	BlaZteR	IP-BLOCK	89.149.210.111
21:58:49	BlaZteR	IP-BLOCK	89.149.210.111
21:58:49	BlaZteR	IP-BLOCK	89.149.210.111
21:58:49	BlaZteR	IP-BLOCK	89.149.210.111
21:58:49	BlaZteR	IP-BLOCK	89.149.210.111
21:58:49	BlaZteR	IP-BLOCK	89.149.210.111
21:58:49	BlaZteR	IP-BLOCK	89.149.210.111
hier HijackThis log
Code:
ATTFilter
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:44:28, on 19.06.2010
Platform: Windows 7  (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Logitech\Logitech Vid\Vid.exe
C:\Program Files\ICQ7.2\ICQ.exe
C:\Program Files\NETGEAR\WG111v2\WG111v2.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Windows\explorer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Common Files\DVDVideoSoft\FreeStudioManager.exe
C:\Windows\explorer.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Users\*name*\Downloads\HiJackThis204.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
O2 - BHO: SMTTB2009 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\HypreCam Toolbar\tbcore3.dll
O3 - Toolbar: HypreCam Toolbar - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\HypreCam Toolbar\tbcore3.dll
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [Logitech Vid] "C:\Program Files\Logitech\Logitech Vid\vid.exe" -bootmode
O4 - HKCU\..\Run: [ICQ] "C:\Program Files\ICQ7.2\ICQ.exe" silent loginmode=4
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - Startup: Logitech . Produktregistrierung.lnk = C:\Program Files\Logitech\Logitech WebCam Software\eReg.exe
O4 - Global Startup: NETGEAR WG111v2 Smart Wizard..lnk = C:\Program Files\NETGEAR\WG111v2\WG111v2.exe
O4 - Global Startup: NETGEAR WG111v2 Smart Wizard.lnk = C:\Program Files\NETGEAR\WG111v2\WG111v2.exe
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\*name*\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: SCM_Service - Unknown owner - C:\Windows\System32\WinService.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 4435 bytes
bitte hilft mir
Geändert von BlaZteR (19.06.2010 um 22:01 Uhr)

Alt 20.06.2010, 11:57   #5
BlaZteR
 
Mein PC wird immer von einer Ip-adresse angegriffen! - Standard

Mein PC wird immer von einer Ip-adresse angegriffen!


wasn das für dreck ich benötige hilfe warum hilft ihr mich nicht?


Alt 23.06.2010, 10:27   #6
Shadow
/// Mr. Schatten
 
Mein PC wird immer von einer Ip-adresse angegriffen! - Standard

Mein PC wird immer von einer Ip-adresse angegriffen!


Zitat:
Zitat von BlaZteR Beitrag anzeigen
wasn das für dreck ich benötige hilfe warum hilft ihr mich nicht?
Vielleicht zuerst wegen deinen guten und ausreichenden Angaben (Wenn du nicht weißt was Ironie ist, bitte schau mal bei Wikipedia) und dann wegen dem zitierten Text vielleicht?
Hier ist ein Forum, hier ist nicht jeder ein 13-Jähriger mit aller Zeit der Welt.
Liefere ordentliche Informationen und du kannst noch hoffen, dass sich trotz deiner Wortwahl jemand erbarmt.

Sagt dir bigspeedpro.com oder BigSeekPro (Toolbar) was?
__________________
--> Mein PC wird immer von einer Ip-adresse angegriffen!

Alt 25.06.2010, 13:59   #7
BlaZteR
 
Mein PC wird immer von einer Ip-adresse angegriffen! - Standard

Mein PC wird immer von einer Ip-adresse angegriffen!


Zitat:
Zitat von Shadow Beitrag anzeigen
Vielleicht zuerst wegen deinen guten und ausreichenden Angaben (Wenn du nicht weißt was Ironie ist, bitte schau mal bei Wikipedia) und dann wegen dem zitierten Text vielleicht?
Hier ist ein Forum, hier ist nicht jeder ein 13-Jähriger mit aller Zeit der Welt.
Liefere ordentliche Informationen und du kannst noch hoffen, dass sich trotz deiner Wortwahl jemand erbarmt.

Sagt dir bigspeedpro.com oder BigSeekPro (Toolbar) was?
nein
( und ja ich war sauer warum mir keiner hilft -,-" )

Antwort

Themen zu Mein PC wird immer von einer Ip-adresse angegriffen!
antivirus, avast, avast!, bho, converter, explorer, firefox, hijack, hijackthis, hilfe!!!, icq, infiziert, internet, internet explorer, log, logfile, malware, malwarebytes, malwarebytes' anti-malware, micro, microsoft, monitor, mozilla, mp3, netgear, nvidia, prozess, security, software, system, trojaner, trojaner board, windows


« HiJackThis Log wegen Werbeseiten-Problem | "gefährliches Backdoorprogramm BDS/Papras.HI" - krnlutou.dll »


Ähnliche Themen: Mein PC wird immer von einer Ip-adresse angegriffen!


  1. Noch ein Zero-Day: Offene Lücke in Java wird angegriffen
    Nachrichten - 13.07.2015 (0)
  2. Mein Pc wird immer langsamer
    Plagegeister aller Art und deren Bekämpfung - 03.05.2015 (3)
  3. Easy-Box wird angegriffen!
    Überwachung, Datenschutz und Spam - 06.01.2014 (6)
  4. mein Rechner wird immer langsamer................
    Netzwerk und Hardware - 12.11.2013 (4)
  5. hxxp://ww94.btosjs.info wird immer nach irgend einer aufgerufenen website geöffnet
    Plagegeister aller Art und deren Bekämpfung - 29.08.2013 (1)
  6. Malwarebytes und hijackthis - mein System wird immer langsamer + mein ESET mag nicht mehr
    Log-Analyse und Auswertung - 07.06.2012 (8)
  7. Mein Laptop wird immer langsamer....Logs beigefügt
    Log-Analyse und Auswertung - 02.04.2012 (9)
  8. Mein Computer wurde angegriffen. Laptop auch verseucht?
    Plagegeister aller Art und deren Bekämpfung - 28.05.2011 (1)
  9. Mein Pc wird immer langsamer :(
    Log-Analyse und Auswertung - 19.11.2010 (7)
  10. Mein Pc wird immer langsamer und hat Internet Probleme
    Log-Analyse und Auswertung - 02.06.2010 (17)
  11. Mein PC wird immer lansamer Hiiiiilllfffeeee!!!
    Log-Analyse und Auswertung - 25.07.2008 (11)
  12. Mein Windows XP wird immer langsamer
    Log-Analyse und Auswertung - 24.02.2008 (4)
  13. Flehe um hilfe! Mein PC wird immer langsamer!
    Log-Analyse und Auswertung - 07.11.2007 (2)
  14. Mein Laptop wird immer langsamer......... :-(
    Log-Analyse und Auswertung - 25.09.2007 (1)
  15. mein Laptop wird immer langsmaer
    Alles rund um Windows - 13.07.2007 (1)
  16. werde immer wieder angegriffen
    Plagegeister aller Art und deren Bekämpfung - 16.12.2005 (8)
  17. Rechner wird ständig angegriffen (W32.Spybot.Worm)
    Plagegeister aller Art und deren Bekämpfung - 02.03.2005 (10)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Mein PC wird immer von einer Ip-adresse angegriffen! - hier HijackThis log Code: Alles auswählen Aufklappen ATTFilter Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 18:07:54, on 19.06.2010 Platform: Windows 7 (WinNT 6.00.3504) MSIE: Internet Explorer v8.00 (8.00.7600.16385) - Mein PC wird immer von einer Ip-adresse angegriffen!...
Archiv
Du betrachtest: Mein PC wird immer von einer Ip-adresse angegriffen! auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130